Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.mft
File:                     sTSesOfbZTbKeYKWH_rJsykWXF8.mft (raw, json)
Hash identifier:          akQ96Xyw0xNhgvbHTofeU06ZCFJXe7FtRaRED/45a3o=
Subject key identifier:   E9:78:18:3F:29:3C:38:CE:DE:4D:A8:DE:DD:F1:9D:2B:CE:26:82:11
Authority key identifier: B1:34:9E:B0:E7:DB:65:36:CA:79:82:96:1F:FA:C9:B3:29:16:5C:5F
Certificate issuer:       /CN=b1349eb0e7db6536ca7982961ffac9b329165c5f
Certificate serial:       0197BA0F69A096D78ADAEDE9B5DCBCC7CBC6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sTSesOfbZTbKeYKWH_rJsykWXF8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.mft
Manifest number:          026B
Signing time:             Sun 29 Jun 2025 05:01:01 +0000
Manifest this update:     Sun 29 Jun 2025 05:01:01 +0000
Manifest next update:     Mon 30 Jun 2025 05:01:01 +0000
Files and hashes:         1: sTSesOfbZTbKeYKWH_rJsykWXF8.crl (hash: JsxCW/NNInn6xme8Nf+SWwg+L4M5PfdxVqwDMi9/nWk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sTSesOfbZTbKeYKWH_rJsykWXF8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 04:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:ba:0f:69:a0:96:d7:8a:da:ed:e9:b5:dc:bc:c7:cb:c6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b1349eb0e7db6536ca7982961ffac9b329165c5f
        Validity
            Not Before: Jun 29 05:01:01 2025 GMT
            Not After : Jun 30 05:01:01 2025 GMT
        Subject: CN=e978183f293c38cede4da8deddf19d2bce268211
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:65:65:30:91:80:b6:18:aa:fb:74:bd:b9:9a:
                    65:4f:dc:c7:c9:b9:08:0e:96:ec:40:18:ed:ed:be:
                    89:f9:79:6e:96:79:95:41:b9:85:6f:3f:d2:2f:d0:
                    e2:a8:1f:98:5b:7b:e4:24:6f:45:20:c6:ef:05:c9:
                    3d:1d:bc:6c:d0:36:b2:e6:e2:d7:16:4c:04:0d:ff:
                    1e:56:74:c7:62:3b:1a:b4:fd:98:e6:23:91:b0:29:
                    ba:e7:50:6d:8f:1f:36:c1:9a:4e:ca:9f:07:e7:ec:
                    11:1b:85:4f:bb:85:c1:53:d9:f1:a7:f1:94:ef:29:
                    16:53:90:bd:b0:64:ce:8f:d2:d1:5f:80:47:eb:42:
                    a5:67:af:50:7a:ae:2d:6d:47:aa:18:f6:2f:e6:c5:
                    df:a3:dc:a8:f3:2c:62:2b:2f:04:c1:66:e9:ac:7a:
                    18:ba:89:93:d4:e5:02:4a:6f:da:bf:39:ea:2d:d5:
                    2b:44:f4:fb:30:13:2b:ef:a2:75:1e:94:11:6c:47:
                    7c:13:d8:98:23:72:c4:33:20:4d:fa:02:e2:99:6d:
                    77:17:06:e4:c3:46:71:88:cc:06:2b:b8:b6:aa:e7:
                    b5:bb:f4:a7:7f:3d:d1:31:b7:8a:33:0b:10:24:2a:
                    3c:2b:b8:c7:6d:06:08:d1:5f:19:f6:be:6b:94:21:
                    98:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:78:18:3F:29:3C:38:CE:DE:4D:A8:DE:DD:F1:9D:2B:CE:26:82:11
            X509v3 Authority Key Identifier:
                keyid:B1:34:9E:B0:E7:DB:65:36:CA:79:82:96:1F:FA:C9:B3:29:16:5C:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTSesOfbZTbKeYKWH_rJsykWXF8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/1b30bf-bcc7-4777-9146-7a30be5cecc0/1/sTSesOfbZTbKeYKWH_rJsykWXF8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:66:35:ad:be:c9:53:88:ff:d3:b7:07:a3:24:d1:a4:4a:78:
         00:aa:db:5a:d0:e9:fc:87:3b:ce:49:0d:f0:1f:27:64:a4:90:
         e1:44:60:09:4f:67:6e:61:94:8b:04:b0:9c:d9:ff:7e:bd:27:
         26:f6:5e:a0:b7:c0:be:38:c2:0f:bb:e4:50:b3:77:ca:cb:83:
         06:22:ab:94:f9:bc:dc:50:32:66:e4:1f:c8:c6:34:7d:6e:d9:
         12:46:59:5f:a7:22:94:1b:87:e0:98:92:84:00:ac:8e:60:e4:
         7b:3b:9c:20:23:00:c7:c4:8b:31:77:b0:ac:20:1b:6f:5b:87:
         f6:54:8b:10:42:1c:0f:5a:d2:a9:93:f1:50:49:f2:27:63:ec:
         ec:b5:9d:f5:1d:19:d1:25:98:51:9b:e4:6e:99:c8:6f:19:48:
         33:2f:38:11:ab:b6:64:79:c1:7b:d9:78:ac:61:a5:7b:ce:d9:
         92:d3:c3:ca:d7:81:85:54:12:41:e4:00:22:3f:14:5a:82:ad:
         b3:82:ec:9f:3a:57:83:b0:df:2b:f3:08:c6:72:39:28:f3:4e:
         75:ef:e8:f0:3c:f2:56:ab:9f:82:4c:f7:9f:5d:31:7c:16:6b:
         36:80:a2:f4:2a:94:09:1a:30:07:41:d2:04:69:35:5d:b8:54:
         4a:8d:64:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6D2mglteK2u3ptdy8x8vGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxMzQ5ZWIwZTdkYjY1MzZjYTc5ODI5NjFmZmFjOWIzMjkx
NjVjNWYwHhcNMjUwNjI5MDUwMTAxWhcNMjUwNjMwMDUwMTAxWjAzMTEwLwYDVQQD
EyhlOTc4MTgzZjI5M2MzOGNlZGU0ZGE4ZGVkZGYxOWQyYmNlMjY4MjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1mVlMJGAthiq+3S9uZplT9zHybkI
DpbsQBjt7b6J+XlulnmVQbmFbz/SL9DiqB+YW3vkJG9FIMbvBck9Hbxs0Day5uLX
FkwEDf8eVnTHYjsatP2Y5iORsCm651Btjx82wZpOyp8H5+wRG4VPu4XBU9nxp/GU
7ykWU5C9sGTOj9LRX4BH60KlZ69Qeq4tbUeqGPYv5sXfo9yo8yxiKy8EwWbprHoY
uomT1OUCSm/avznqLdUrRPT7MBMr76J1HpQRbEd8E9iYI3LEMyBN+gLimW13Fwbk
w0ZxiMwGK7i2que1u/Snfz3RMbeKMwsQJCo8K7jHbQYI0V8Z9r5rlCGY0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOl4GD8pPDjO3k2o3t3xnSvOJoIRMB8GA1UdIwQY
MBaAFLE0nrDn22U2ynmClh/6ybMpFlxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1RTZXNPZmJaVGJLZVlLV0hfckpzeWtXWEY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8xYjMwYmYtYmNjNy00Nzc3LTkxNDYt
N2EzMGJlNWNlY2MwLzEvc1RTZXNPZmJaVGJLZVlLV0hfckpzeWtXWEY4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS8xYjMwYmYtYmNjNy00Nzc3LTkxNDYtN2EzMGJlNWNlY2Mw
LzEvc1RTZXNPZmJaVGJLZVlLV0hfckpzeWtXWEY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEmY1rb7J
U4j/07cHoyTRpEp4AKrbWtDp/Ic7zkkN8B8nZKSQ4URgCU9nbmGUiwSwnNn/fr0n
JvZeoLfAvjjCD7vkULN3ysuDBiKrlPm83FAyZuQfyMY0fW7ZEkZZX6cilBuH4JiS
hACsjmDkezucICMAx8SLMXewrCAbb1uH9lSLEEIcD1rSqZPxUEnyJ2Ps7LWd9R0Z
0SWYUZvkbpnIbxlIMy84Eau2ZHnBe9l4rGGle87ZktPDyteBhVQSQeQAIj8UWoKt
s4LsnzpXg7DfK/MIxnI5KPNOde/o8DzyVqufgkz3n10xfBZrNoCi9CqUCRowB0HS
BGk1XbhUSo1kQA==
-----END CERTIFICATE-----